Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XsUVlokpFOfH5SQNpBPydOeNoIc.roa
File: XsUVlokpFOfH5SQNpBPydOeNoIc.roa (raw, json)
Hash identifier: YjmkxYVmIUmncy7v7OMxsXHgdpA0UVd+swl3cbIbn9M=
Subject key identifier: 5E:C5:15:96:89:29:14:E7:C7:E5:24:0D:A4:13:F2:74:E7:8D:A0:87
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03FE
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XsUVlokpFOfH5SQNpBPydOeNoIc.roa
Signing time: Tue 06 Jun 2023 16:03:51 +0000
ROA not before: Tue 06 Jun 2023 16:03:51 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.224.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1022 (0x3fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:51 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=5EC51596892914E7C7E5240DA413F274E78DA087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f4:8d:d5:d1:33:5f:59:13:7e:40:5c:ad:49:
88:1b:ff:c2:ec:f0:fc:ec:05:fd:e0:31:10:64:9c:
95:6d:b7:28:26:2b:36:da:fd:1a:fc:84:b2:80:f7:
a3:3d:ab:e9:ba:91:58:d7:be:4c:d7:3b:73:41:60:
44:c3:49:18:c5:67:9d:ee:d6:33:d1:7b:6f:7c:21:
94:b3:ef:42:f2:0a:e3:12:84:d6:ed:8e:80:39:23:
70:63:73:a5:40:03:06:98:2f:13:87:0a:2c:f4:a3:
e2:4e:38:91:5e:51:72:82:f9:49:e0:9c:35:a4:6c:
55:4b:53:c0:51:67:51:7f:fc:10:87:2e:40:b3:bb:
db:e6:fa:95:17:8e:f3:79:7d:79:85:ad:aa:97:92:
38:0f:fe:11:dd:66:6e:83:af:43:3d:86:8b:c7:ea:
dd:0f:7e:67:e9:ec:f1:4d:a5:fb:d0:63:d7:4a:9f:
68:19:55:c8:f4:cb:5c:41:f5:49:f3:87:cf:40:f9:
26:b2:95:0d:cf:aa:71:0a:9e:3e:89:ae:2f:ea:ad:
eb:54:bf:6a:d8:64:3b:eb:d0:d8:27:f3:92:36:26:
9e:07:b5:35:da:e7:0c:e3:48:14:33:51:4a:4d:bd:
ad:1c:0b:85:5b:3c:85:87:73:86:4a:c4:2f:c5:8a:
5d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C5:15:96:89:29:14:E7:C7:E5:24:0D:A4:13:F2:74:E7:8D:A0:87
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XsUVlokpFOfH5SQNpBPydOeNoIc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.224.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:1a:99:47:d8:92:16:19:4d:82:58:16:91:ec:9a:b5:19:e5:
a3:85:4d:8a:97:13:d1:62:2f:08:5a:fb:94:34:ad:4e:f6:47:
21:73:61:18:d5:5c:46:03:a7:5d:2f:64:9a:3d:8f:cb:ad:d1:
23:59:82:70:ce:44:94:79:37:a6:cc:26:a6:e2:b3:53:e8:a1:
e7:54:a3:74:75:df:7b:24:c2:cf:4b:17:7e:35:d2:7a:37:0c:
ad:a1:6a:17:87:8c:48:ee:bb:99:66:56:e4:ad:67:73:f5:23:
05:a6:d6:3d:2c:48:06:1b:85:35:44:b9:45:d8:22:4e:b4:fd:
88:6e:fe:fc:b7:b1:3f:74:f8:c1:32:5a:5d:4f:22:10:30:48:
7d:fa:c0:26:1c:39:d0:32:3d:07:6c:05:57:1f:a1:c9:76:d3:
a5:09:a8:86:3b:21:53:4b:91:b5:3f:e3:6d:7a:95:9a:a8:04:
c9:7a:1b:80:66:dd:3e:78:0d:7c:1c:7c:07:8c:ff:8b:38:66:
12:91:37:26:36:2d:ef:30:b8:6e:61:7d:e2:ce:75:7b:50:bd:
f1:ae:f6:b5:f7:75:f9:39:ce:db:22:37:18:c0:12:e0:e1:45:
46:00:0f:69:4e:87:41:a9:3c:81:d8:d7:46:6e:f4:d7:26:9c:
d9:04:bb:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:13 2025 by rpki-client